adding sealing test & seal permissions (#12566) (#12569)

Co-authored-by: Dan Rivera <dan.rivera@hashicorp.com>
2026-05-28 04:10:44 -04:00 · 2026-02-26 13:38:05 -07:00 · 2026-02-26 13:38:05 -07:00 · 57e47f4546
commit 57e47f4546
parent 82072019a3
2 changed files with 19 additions and 0 deletions
--- a/ui/e2e/policies/superuser.hcl
+++ b/ui/e2e/policies/superuser.hcl
@ -3,4 +3,8 @@

 path "*" {
  capabilities = ["create", "read", "update", "delete", "list", "sudo"]
+}
+// needed permissions to be able to seal vault
+path "sys/seal" {
+  capabilities = ["sudo", "update"]
 }
--- a/ui/e2e/tests/superuser/seal.spec.ts
+++ b/ui/e2e/tests/superuser/seal.spec.ts
@ -0,0 +1,15 @@
+/**
+ * Copyright IBM Corp. 2016, 2025
+ * SPDX-License-Identifier: BUSL-1.1
+ */
+
+import { test, expect } from '@playwright/test';
+
+test('sealing workflow', async ({ page }) => {
+  await page.goto('dashboard');
+  await page.getByRole('link', { name: 'Resilience and recovery' }).click();
+  await page.getByRole('link', { name: 'Seal Vault' }).click();
+  await page.getByRole('button', { name: 'Seal' }).click();
+  await page.getByRole('button', { name: 'Confirm' }).click();
+  await expect(page.getByText('Vault is sealed')).toBeVisible();
+});